Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page.Referenceshttps://chromereleases.googleblog.com/2018/01/stable-channel-update-for-desktop_24.htmlhttps://crbug.com/791003http://www.securityfocus.com/bid/105516
